Art
Thursday, 19 November 2015
The BSI published the report on the state of IT security. It notes that the threat situation comes to a head and called software that offers hackers the most loopholes. It is located on millions of German computers and smartphones.
Computers and smartphones are exposed to “risk a very high level” in the opinion of the Federal Office for Security in Information Technology (BSI). This emerges from the BSI report on the state of IT security in Germany in 2015, which was presented on Thursday in Berlin. Federal Interior Minister Thomas de Maizière (CDU) accused in the report to a number of manufacturers to undertake not anything to avoid risks. “Given the high number of identified weaknesses tend some IT manufacturers to provide no more security updates for their view less serious vulnerabilities in their products.”
The number of critical vulnerabilities in the offices of millions of people Standard software have increased massively again compared to last year, represents the BSI firmly. 2014 counted the Authority in the eleven most used programs and operating systems still around 1,100 dangerous gaps. Until the end of September 2015, there were already 847, extrapolated the BSI expects 2015 total about 1800 critical vulnerabilities.
Flash Player risk number were 1
With 160 vulnerabilities in browser plug-in Flash Player by far found most critical vulnerabilities – Adobe software is for many years a favorite of hackers. In second place is Microsoft’s browser Internet Explorer (IE) with about 130 incident doors for attackers, in which especially older versions are full of holes. Somewhat surprisingly Mac OS X is the number of critical vulnerabilities on par with IE and just ahead of Microsoft’s Windows.
Many users Apple’s operating system which is why owners of Apple computers often a virus is considered to be very safe, forego protection. This is due to the fact that the operating system with a global market share of around 7 percent for hackers is still relatively uninteresting. On the other hand Apple is a techniques that make it difficult to exploit existing vulnerabilities. This includes the so-called sandboxing, in which an application can only access the system areas necessary for their job functions. Also the BSI therefore measures besides security updates such techniques great importance.
Google’s Chrome browser has only about half as many gaps as the IE, Mozilla’s Firefox, but still has some rare holes. In Microsoft Office, Oracle Java, Linux and Mozilla Thunderbird to late September less than 40 critical vulnerabilities have been found.
Android has released an update problem
More about
The BSI has blank check based on various criteria such as access to calendars and address books, location data and the use of tracking networks since 2014 and around 100 apps for the operating systems Android, iOS and BlackBerry OS. No app came here without a finding by testing. Particularly frequently the involvement of so-called tracking networks, which can not be shut down, the collection of spatial data and the absence are noticed by appropriate privacy policies, says the report.
A special problem sees the BSI for Android devices because manufacturers put a “partially negligent update behavior” on the day. As an example, the authority calls the Stagefright-gap in the multimedia interface of the operating system, which had at the time of discovery affected almost all Android devices. So far, only a few smartphones and tablets have received updates that eliminate the dangerous weaknesses.
Source: n-tv.de
themes
No comments:
Post a Comment